ActiveSyncProvider in Microsoft Windows 10 Gold and 1511 allows attackers to discover credentials by leveraging failure of Universal Outlook to obtain a secure connection, aka "Universal Outlook Information Disclosure Vulnerability."
Microsoft Windows 10 (22H2)
Exploit
CVE-2016-3312
NVD
Microsoft Patch Tuesday